Vulnerabilities > CVE-2012-0904 - Resource Management Errors vulnerability in Videolan VLC Media Player 1.1.11

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

videolan

CWE-399

exploit available

NVD

Published: 2012-01-20

Updated: 2017-09-19

Summary

VLC media player 1.1.11 allows remote attackers to cause a denial of service (crash) via a long string in an amr file.

Vulnerable Configurations

Part	Description	Count
Application	Videolan Videolan VLC Media Player 1.1.11	1

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

Exploit-Db

description	VLC Media Player 1.1.11 - (.amr) Denial of Service PoC. CVE-2012-0904. Dos exploit for windows platform
file	exploits/windows/dos/18309.pl
id	EDB-ID:18309
last seen	2016-02-02
modified	2012-01-04
platform	windows
port
published	2012-01-04
reporter	Fabi@habsec
source	https://www.exploit-db.com/download/18309/
title	VLC Media Player 1.1.11 - .amr Denial of Service PoC
type	dos

Oval

accepted

2012-11-19T04:00:09.347-05:00

class

vulnerability

contributors

name Shane Shaffer
organization G2, Inc.
name Shane Shaffer
organization G2, Inc.

definition_extensions

comment	VLC media player is installed
oval	oval:org.mitre.oval:def:11821

description

VLC media player 1.1.11 allows remote attackers to cause a denial of service (crash) via a long string in an amr file.

family

windows

oval:org.mitre.oval:def:14327

status

accepted

submitted

2012-01-24T15:20:33.178-04:00

title

Remote Denial of Service in VideoLAN VLC Media Player 1.1.11

version

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Exploit-Db

Oval

References